AI Security Review
scanned 4h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The npm postinstall hook automatically invokes skyline setup through a platform binary. Documented setup installs a supervised autostart MCP/HTTP daemon and agent CLI plugins, creating persistent AI-agent control-surface wiring during package installation.
Decision evidence
public snapshot- package.json defines postinstall: node postinstall.js
- postinstall.js runs bin.js with setup during npm lifecycle unless CI or SKYLINE_NO_AUTO_SETUP is set
- bin.js resolves and spawnSyncs a platform optional dependency binary with inherited stdio
- README.md says skyline setup installs a supervised autostart HTTP daemon on port 7333
- README.md says setup best-effort installs Skyline marketplace plugins for agent CLIs already on PATH
- README.md instructs agent MCP/plugin wiring to 127.0.0.1:<port>/mcp
- No credential harvesting or exfiltration code is present in the JS wrapper files
- No network fetch code appears in package JS sources
- Lifecycle hook is documented as best-effort and can be skipped with CI or SKYLINE_NO_AUTO_SETUP
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
bin.jsView on unpkg